andata
/
rancher-charts
mirror of https://git.rancher.io/charts
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,092 Commits
50 Branches
2 Tags
432 MiB
Commit Graph

737 Commits (362eb788555c206e086f8e2ef8852ce178046995)

Author SHA1 Message Date
Brenda Rearden 3990a653f2
(dev-v2.6-archive) Change image tags to 1.7.0, update pod image version, remove addons 
(partially cherry picked from commit 49f0aaad9e)
 2022-01-06 11:32:40 -08:00
Brenda Rearden e8f7e0842d
(dev-v2.6-archive) Merge pull request #574 from brendarearden/istio-168 
Istio: Add default pod disruption budget

(partially cherry picked from commit 8445fe7bd6)
 2022-01-06 11:32:40 -08:00
aiyengar2 314abc60c0
(dev-v2.6-archive) Merge pull request #534 from aiyengar2/alerting_v2 
Add Alerting V2

(partially cherry picked from commit 58374d5078)
 2022-01-06 11:32:40 -08:00
Arvind Iyengar c5b386d2e8
(dev-v2.6-archive) Add alerting support to rancher-monitoring 
(partially cherry picked from commit d085bc088f)
 2022-01-06 11:32:39 -08:00
Brenda Rearden 68da928570
(dev-v2.6-archive) Add default podDisruptionBudget 
(partially cherry picked from commit 5a211497c2)
 2022-01-06 11:32:39 -08:00
Brenda Rearden 3972b3e913
(dev-v2.6-archive) Change image version to remove canary support 
(partially cherry picked from commit 0786578203)
 2022-01-06 11:32:38 -08:00
Brenda Rearden 89c0769f87
(dev-v2.6-archive) Change to rancher images 
(partially cherry picked from commit a267e30656)
 2022-01-06 11:32:38 -08:00
Brenda Rearden 79e8630531
(dev-v2.6-archive) Add default podDisruptionBudget 
(partially cherry picked from commit a486f692f7)
 2022-01-06 11:32:37 -08:00
Jacob Payne b5283d8838
(dev-v2.6-archive) fixed missing rke2 config 
(partially cherry picked from commit f022fe5757)
 2022-01-06 11:32:37 -08:00
Jacob Payne 8e72e0da12
(dev-v2.6-archive) fixed crd breakout (#578) 
* fixed crd breakout

(partially cherry picked from commit 729e3c53d4)
 2022-01-06 11:32:36 -08:00
Jacob Payne 7958a2e9eb
(dev-v2.6-archive) Feature/logging/rke2 (#568) 
added rke2 logging support

(partially cherry picked from commit fb19db55fb)
 2022-01-06 11:32:36 -08:00
Brenda Rearden cdb296b1d1
(dev-v2.6-archive) Change image version to remove canary support 
(partially cherry picked from commit 4e719e4404)
 2022-01-06 11:32:35 -08:00
Brenda Rearden 3b9e525e2d
(dev-v2.6-archive) Merge pull request #569 from brendarearden/istio-167 
Remove canary and set version to 1.6.7 for upgrade testing

(partially cherry picked from commit af2f94b759)
 2022-01-06 11:32:35 -08:00
Darren Shepherd 9e5c0abc62
(dev-v2.6-archive) Add Fleet 
(partially cherry picked from commit 323e56fe20)
 2022-01-06 11:32:34 -08:00
Jacob Payne d91f49e076
(dev-v2.6-archive) fixed template issues with k3s (#567) 
(partially cherry picked from commit 7e14b4ee14)
 2022-01-06 11:32:34 -08:00
Brenda Rearden 1799bcb3bf
(dev-v2.6-archive) Remove canary and set version to 1.6.7 for upgrade testing 
(partially cherry picked from commit 6e4c1e8d25)
 2022-01-06 11:32:33 -08:00
Brenda Rearden dd7e18120c
(dev-v2.6-archive) Change to rancher imags, delete old builds 
(partially cherry picked from commit bddd43f53f)
 2022-01-06 11:32:33 -08:00
Caleb Bron b5eaa9042c
(dev-v2.6-archive) remove rke2 charts 
(partially cherry picked from commit 0a381894df)
 2022-01-06 11:32:32 -08:00
Jacob Payne 7bfb20e89a
(dev-v2.6-archive) added k3s support (#560) 
(partially cherry picked from commit a63500248a)
 2022-01-06 11:32:32 -08:00
Steven Crespo 65557904bf
(dev-v2.6-archive) Merge pull request #553 from PennyScissors/update-gatekeeper 
Update gatekeeper to v3.1.0-rc.1

(partially cherry picked from commit 813457423b)
 2022-01-06 11:32:31 -08:00
Daishan 7dc502a321
(dev-v2.6-archive) Update rio to v0.8.0-rc2, add experimental label 
(partially cherry picked from commit 4e991faf6a)
 2022-01-06 11:32:31 -08:00
Arvind Iyengar 77be6b1378
(dev-v2.6-archive) Change default to all CRs in all namespaces 
This commit sets the following field to false:
`<serviceMonitor|podMonitor|rule>SelectorNilUsesHelmValues: true`

As a result, we look for all CRs with any labels in all namespaces rather than just
the ones tagged with `release: rancher-monitoring`.

(partially cherry picked from commit d2bf307e59)
 2022-01-06 11:32:30 -08:00
Arvind Iyengar 1167f62350
(dev-v2.6-archive) Update grafana default deploymentStrategy 
If the Grafana deployment strategy is not Recreate, the deployment will
be stuck during an upgrade when PV is attached.

(partially cherry picked from commit f3aebdca14)
 2022-01-06 11:32:30 -08:00
Arvind Iyengar 99cb52dac7
(dev-v2.6-archive) Add NoExecute + NoSchedule toleration to PushProx 
This commit adds NoExecute / NoSchedule tolerations by default to all of the
PushProx exporters since the default expectation when deploying these exporters
is that they are deployed on the expected nodes based on nodeSelector labels
regardless of any taints added to those nodes.

Users can always choose to override these settings if necessary.

(partially cherry picked from commit 215cf10a68)
 2022-01-06 11:32:29 -08:00
Arvind Iyengar bf8675697f
(dev-v2.6-archive) Increase prometheus resource limits and requests 
(partially cherry picked from commit de6fbbb129)
 2022-01-06 11:32:29 -08:00
Arvind Iyengar 54f6d00110
(dev-v2.6-archive) Move ClusterRoles and change values.yaml fields 
- Moves `monitoringRole` settings into `global.rbac` in values.yaml
- Moves user ClusterRoles into one file: `rancher-monitoring/clusterroles.yaml`
- Reformats user ClusterRoles format to look like upstream format
- Enables aggregateRolesForRBAC by default
- Updates README.md and CHANGELOG.md for relevant ClusterRole changes

(partially cherry picked from commit 3d6b8c94c7)
 2022-01-06 11:32:28 -08:00
Arvind Iyengar b643adedc0
(dev-v2.6-archive) Use Rancher PushProx image 
(partially cherry picked from commit 93f477b3e9)
 2022-01-06 11:32:28 -08:00
Arvind Iyengar 74439b3f23
(dev-v2.6-archive) Update default namespace to cattle-monitoring-system 
(partially cherry picked from commit 701098fd72)
 2022-01-06 11:32:27 -08:00
Arvind Iyengar 67f6d928ab
(dev-v2.6-archive) Update README to add rancher-monitoring changes 
Adds prometheus-adapter and rancher-pushprox to the README.md and also
adds fields for Rancher Monitoring config

(partially cherry picked from commit 63647c6849)
 2022-01-06 11:32:27 -08:00
brendarearden bb03a724e0
(dev-v2.6-archive) Change namespace back to istio-system 
Add force install flag
Increase istio version

(partially cherry picked from commit ff8bcc0755)
 2022-01-06 11:32:26 -08:00
Jacob Payne f5880772d6
(dev-v2.6-archive) added image overrides (#554) 
(partially cherry picked from commit b3e81b1db6)
 2022-01-06 11:32:26 -08:00
Steven Crespo f6e48e44ae
(dev-v2.6-archive) Update gatekeeper to v3.1.0-rc.1 
- Updated package to reference latest release
- Removed previous chart's tgz to make changes in place

(partially cherry picked from commit 1aaa1948f6)
 2022-01-06 11:32:25 -08:00
Caleb Bron d6dbe16191
(dev-v2.6-archive) add custom web_root to kiali 
(partially cherry picked from commit b76723768c)
 2022-01-06 11:32:25 -08:00
Jacob Payne 400c0e7cad
(dev-v2.6-archive) added toggle for logging persistence (#540) 
(partially cherry picked from commit 3ec3d344c7)
 2022-01-06 11:32:24 -08:00
Jacob Payne 65ed401a0b
(dev-v2.6-archive) Merge pull request #539 from paynejacob/logging-secrets 
use secrets for certs and passwords

(partially cherry picked from commit 444367b353)
 2022-01-06 11:32:24 -08:00
Caleb Bron f58e10c4aa
(dev-v2.6-archive) Remove helm vendored dependencies from charts 
(partially cherry picked from commit cb3b2acebd)
 2022-01-06 11:32:23 -08:00
cbron 82a5370088
(dev-v2.6-archive) Generated changes 
(partially cherry picked from commit 7e532ef2fe)
 2022-01-06 11:32:22 -08:00
Caleb Bron f69fe062c6
(dev-v2.6-archive) Merge pull request #532 from cbron/kiali-server 
rancher-kiali-server

(partially cherry picked from commit 9329c3c38d)
 2022-01-06 11:32:22 -08:00
Jacob Payne f9245f662f
(dev-v2.6-archive) use secrets for certs and passwords 
(partially cherry picked from commit 4f4e7dce5d)
 2022-01-06 11:32:21 -08:00
Jacob Payne 2f50ffa5c4
(dev-v2.6-archive) Merge pull request #536 from paynejacob/fix/issue-28256 
fixed logging cluster roles

(partially cherry picked from commit 413a846647)
 2022-01-06 11:32:21 -08:00
Jacob Payne e05f634466
(dev-v2.6-archive) Merge pull request #535 from paynejacob/feature/rke 
added rke support

(partially cherry picked from commit 924a9fd125)
 2022-01-06 11:32:20 -08:00
Jacob Payne 56bc2e6fc0
(dev-v2.6-archive) Merge pull request #537 from paynejacob/feature/logging-crd-breakout 
added crd annotations for logging

(partially cherry picked from commit 8dc1928d82)
 2022-01-06 11:32:20 -08:00
Jacob Payne 41b77cb8e0
(dev-v2.6-archive) added rke support 
(partially cherry picked from commit 569e213fe8)
 2022-01-06 11:32:19 -08:00
Jacob Payne 78ffaa8df3
(dev-v2.6-archive) added crd annotations for logging 
(partially cherry picked from commit ac8099a8e3)
 2022-01-06 11:32:19 -08:00
Steven Crespo 43572f2c70
(dev-v2.6-archive) Merge pull request #527 from PennyScissors/update-gatekeeper-chart-rebase 
Update gatekeeper chart

(partially cherry picked from commit fbbcefc976)
 2022-01-06 11:32:19 -08:00
Jacob Payne 2bdbe9d888
(dev-v2.6-archive) fixed logging cluster roles 
(partially cherry picked from commit 6e70b85a5b)
 2022-01-06 11:32:18 -08:00
Caleb Bron 326e93fe55
(dev-v2.6-archive) rancher-kiali-server init 
(partially cherry picked from commit ef8a72e077)
 2022-01-06 11:32:18 -08:00
Darren Shepherd 75a1d1f625
(dev-v2.6-archive) Remove ECM feature chart 
(partially cherry picked from commit 6554efb687)
 2022-01-06 11:32:17 -08:00
Steven Crespo 88a5e1654f
(dev-v2.6-archive) Add webhook service and update changelog 
(partially cherry picked from commit c6370509d8)
 2022-01-06 11:32:17 -08:00
Steven Crespo 6485c882dd
(dev-v2.6-archive) Move add-on files to overlay 
Move add-on files allowedrepos.yaml, job-constraints-crd.yaml and
requiredlabels.yaml to overlay

(partially cherry picked from commit 865476ee75)
 2022-01-06 11:32:16 -08:00
Jacob Payne 45057ae28f
(dev-v2.6-archive) Merge pull request #522 from paynejacob/feature/logging-providers 
added kafka, splunk, syslog output support

(partially cherry picked from commit 33fa5f70ca)
 2022-01-06 11:32:16 -08:00
Steven Crespo 812cabad8a
(dev-v2.6-archive) Enable generate CRD chart 
(partially cherry picked from commit df740fecc8)
 2022-01-06 11:32:15 -08:00
Steven Crespo 34f2f45468
(dev-v2.6-archive) Update for Helm 3 compatibility 
- Move crds to crds directory
- Remove crd-install hooks and templates from crds

(partially cherry picked from commit 19b1be917d)
 2022-01-06 11:32:15 -08:00
Steven Crespo b50f96056d
(dev-v2.6-archive) Remove index and update istio-kubectl 
- Remove index as we package and host our charts
- Update rancher/istio-kubectl image tag to 1.5.8

(partially cherry picked from commit d2578e40da)
 2022-01-06 11:32:15 -08:00
Steven Crespo 071fc996e0
(dev-v2.6-archive) Update namespace annotation 
- Update namespace annotation to `cattle-gatekeeper-system`
- Remove `gatekeeper-system` from templates as Rancher handles
namespaces for chart installation.

(partially cherry picked from commit 6e147640be)
 2022-01-06 11:32:14 -08:00
Jacob Payne 16b52cb135
(dev-v2.6-archive) added kafka, splunk, syslog output support 
(partially cherry picked from commit 75d396906a)
 2022-01-06 11:32:14 -08:00
Brenda Rearden 834dfcbf0d
(dev-v2.6-archive) Merge pull request #529 from brendarearden/istio-versioning 
Update version to 1.6.7

(partially cherry picked from commit df9f93262b)
 2022-01-06 11:32:13 -08:00
Steven Crespo 1d5874faa4
(dev-v2.6-archive) Update opa gatekeeper chart to v3.1.0-beta.11 
The previous patch didn't apply cleanly since the latest version had
significant changes made including structural. Instead I started with
an empty patch file and made changes manually. This patch includes the
same changes done in our previous patch, but on the latest version of
the chart.

(partially cherry picked from commit 3d8b451d4a)
 2022-01-06 11:32:13 -08:00
Arvind Iyengar 014be77b77
(dev-v2.6-archive) Remove CRD code from upstream 
Removes the code that supports the Helm 2 hack for crd/ (`prometheus-operator/cleanup-crds.yaml` and
`prometheus-operator/crds.yaml`) and removes crd-install hooks from crds.

Also updates the README.md and CHANGELOG.md accordingly.

(partially cherry picked from commit 921f735cbc)
 2022-01-06 11:32:12 -08:00
Brenda Rearden db4a2dd1e3
(dev-v2.6-archive) Update version to 1.6.7 
(partially cherry picked from commit b0a79ea343)
 2022-01-06 11:32:12 -08:00
aiyengar2 662552e078
(dev-v2.6-archive) Merge pull request #517 from aiyengar2/add_split_crd_flag 
Add generateCRDChart flag

(partially cherry picked from commit c72f44d1cc)
 2022-01-06 11:32:12 -08:00
Arvind Iyengar bdb8f7d3bf
(dev-v2.6-archive) Enable splitting CRDs to separate package 
This commit adds script changes to automatically allow packages to split
the CRD components located in a crd/ directory into a separate package.

It also automatically adds in a validation yaml helper to the main package
to prevent a user from installing the base package without installing the crd
install package first.

Any package can enable the creation of a separate crd package by just adding
`splitCRDsIntoSeparatePackage: true` into the package.yaml, as shown in the
rancher-monitoring chart.

(partially cherry picked from commit fcc8528186)
 2022-01-06 11:32:11 -08:00
Jacob Payne bd4b445e42
(dev-v2.6-archive) fixed logging namespace and ui component name 
(partially cherry picked from commit bca787abea)
 2022-01-06 11:32:11 -08:00
Vincent Fiduccia 8129f4196f
(dev-v2.6-archive) Update README.md 
(partially cherry picked from commit d239bf188a)
 2022-01-06 11:32:10 -08:00
Caleb Bron f893fe12c3
(dev-v2.6-archive) moving dev-charts to charts and fixing logo path 
(partially cherry picked from commit a224a87038)
 2022-01-06 11:32:10 -08:00
Caleb Bron 35c812165a
(dev-v2.6-archive) copy charts from dev-charts 
(partially cherry picked from commit f7dd80a3c1)
 2022-01-06 11:32:09 -08:00
Denise Schannon 3c2a851726
(dev-v2.6-archive) Initial commit 
(partially cherry picked from commit 44e16849c3)
 2022-01-06 11:32:09 -08:00
Arvind Iyengar 0b5f0f8c2e
Remove packages/istio from the main branch 
This commit removes packages/istio from the main branch.

This has been a long-standing pending maintenance task and should not have any impact on the main branch.

Signed-off-by: Arvind Iyengar <arvind.iyengar@rancher.com>
 2021-01-14 22:23:04 -08:00
actions f5fcf301c1 Generated changes 2020-10-02 00:51:10 +00:00
Caleb Bron 2087de28b5 clean up main 2020-09-30 16:45:24 -07:00
rajashree 37a8648cf8 Change encryption config field name in restore crd 2020-09-22 10:26:48 -07:00
maggieliu 34fdd14bca
Merge pull request #674 from aiyengar2/fix_monitoring_chart_hardened 
Support monitoring in hardened RKE clusters
 2020-09-22 10:04:58 -07:00
maggieliu 6edb750ce9
Merge pull request #675 from aiyengar2/fix_pushprox_chart_hardened 
Support pushprox in hardened RKE clusters
 2020-09-22 10:04:44 -07:00
Prachi Damle 0f786657a2
Merge pull request #676 from prachidamle/airgap_fix 
Use global registry for security-scan and sonobuoy tool images to support airgapped setups
 2020-09-21 20:59:38 -07:00
Jacob Payne 91d1dedca1
allow tolerations to be passed to fluentbit containers (#673) 2020-09-21 16:47:48 -07:00
Prachi Damle 42f30bfad1 Use the system_default_registry for security-scan and sonobuoy images 
Deleting tgz assets
 2020-09-21 15:21:56 -07:00
Steven Crespo 32f1b41934
Merge pull request #670 from PennyScissors/update-gk-v3.1.1 
Update gatekeeper to version 3.1.1
 2020-09-21 15:01:46 -07:00
Steven Crespo 5757f8cc15 Update gatekeeper to v3.1.1 2020-09-21 12:26:43 -07:00
Arvind Iyengar e3d6033572 Support monitoring in hardened RKE clusters 
This commit adds support for deploying rancher-monitoring into hardened clusters.

It modifies some of the default securityContexts and does some misc. fixes such as:
- Removing default AppArmor PSP annotations from Grafana (related to https://github.com/helm/charts/issues/9090)
- Modifying rkeScheduler and rkeControllerManager to use localhost to scrape components since the endpoints aren't exposed in a hardened cluster

These changes have been verified on a hardened RKE cluster.
 2020-09-21 12:04:07 -07:00
Arvind Iyengar 7d1332356c Support pushprox in hardened RKE clusters 
This commit adds support for deploying rancher-pushprox into hardened clusters.

It introduces securityContexts and rearranges the RBAC in order to support a PodSecurityPolicy for the PushProx clients.

These changes have been verified on a hardened RKE cluster.
 2020-09-21 00:20:45 -07:00
Arvind Iyengar 4da2300a26 Move pushprox RBAC into separate file 2020-09-21 00:20:10 -07:00
Jacob Payne 60c84b3c3b
fixed eks and k3s logging in airgap (#671) 2020-09-20 15:00:04 -07:00
Arvind Iyengar b80fb3a8ff Use separate namespace only for dashboards 
This commit renames `grafana-dashboards` to `cattle-dashboards` and deprecates the `grafana-datasources` namespace in favor of the normal release namespace.

Related Issue: rancher/rancher#28887
 2020-09-19 19:23:35 -07:00
Arvind Iyengar 0fa3a06de0 Split RBAC for ConfigMaps and Secrets 
Related Issue: https://github.com/rancher/rancher/issues/29013
 2020-09-19 19:23:33 -07:00
Arvind Iyengar 2e1ed1b130 Relocate Rancher roles to overlay/ 2020-09-19 19:00:23 -07:00
Daishan 89cb2793e9 Bump fleet, rancher-operator, webhook 2020-09-18 23:01:59 -07:00
Arvind Iyengar 95cf887f5f Add annotations that were left out on rebase 
Dropped on accident in rebase https://github.com/rancher/charts/pull/641/files#diff-ed5b5b87cf149adc6a6408bf81993efdR681-R682
 2020-09-18 17:08:11 -07:00
Brenda Rearden 34676b359a
Merge pull request #667 from brendarearden/image-updates 
Set installer repo,tag in values.yaml
 2020-09-18 16:41:06 -07:00
aiyengar2 034952747f
Merge pull request #666 from aiyengar2/fix_kube_dns_namespace 
Create kube-dns service monitor in kube-system
 2020-09-18 16:34:48 -07:00
Brenda Rearden 9932422f51 Set installer repo,tag in values.yaml 2020-09-18 15:56:15 -07:00
Rajashree Mandaogane 820f105aa2
Merge pull request #663 from mrajashree/upd 
Update resourceset to include configmaps for clusterrepos
 2020-09-18 15:37:18 -07:00
Arvind Iyengar 700975ee95 Create kube-dns service monitor in kube-system 
This is required since, by default, we ignoreNamespaceSelectors.
 2020-09-18 15:35:21 -07:00
aiyengar2 afb3af8690
Merge pull request #662 from aiyengar2/use_new_busybox 
Replace rancher/busybox w/ rancher/library-busybox
 2020-09-18 15:29:56 -07:00
rajashree b3cc3a717c Update resourceset to include configmaps for clusterrepos 2020-09-18 15:26:55 -07:00
Brenda Rearden 14f0a39a4a
Merge pull request #659 from brendarearden/image-updates 
Image updates for Istio 1.7.1 and Kiali 1.23.0
 2020-09-18 10:57:10 -07:00
Prachi Damle 89746f9fe1
Merge pull request #664 from prachidamle/new_cis_fixes 
CIS chart fixes to update image tag, fixes for hardened cluster
 2020-09-18 10:47:13 -07:00
Prachi Damle 2dd35d89bb Delete tgz files from assets, parameter in the post-install hook for namespace should use the 
helm templating
 2020-09-18 10:36:16 -07:00
Brenda Rearden d397bb512c Update kiali to 1.23.0 2020-09-18 10:25:50 -07:00
Darren Shepherd ecd90e66af fleet-0.3.0-beta1 2020-09-18 07:33:18 -07:00
Prachi Damle af609af172 Fixes to clear error state on scan retry, fixes for CIS hardened cluster 2020-09-18 00:33:33 -07:00
Daishan Peng 4cd7a24bd8
Merge pull request #660 from StrongMonkey/add-rio-annotations 
Add istio dependency to rio chart
 2020-09-17 20:28:45 -07:00
Arvind Iyengar c263e58157 Replace rancher/busybox w/ rancher/library-busybox 
Related Issue: https://github.com/rancher/rancher/issues/28978
 2020-09-17 18:38:14 -07:00
Arvind Iyengar 178528b12c Rebase to new upstream at kube-prometheus-stack 
The old upstream at https://github.com/helm/charts/tree/master/stable/prometheus-operator has been deprecated in favor of the chart at https://github.com/prometheus-community/helm-charts/tree/main/charts/kube-prometheus-stack.

This commit modifies the rancher-monitoring patch in order to rebase to this new upstream, so it contains a ton of different changes to the patch file.

Related Issue: rancher/rancher#28822
 2020-09-17 17:10:42 -07:00
Daishan f29ed480a8 Add istio dependency to rio chart 2020-09-17 16:51:55 -07:00
Brenda Rearden 5c46fa62ec Update istio to 1.7.1 2020-09-17 00:47:14 -07:00
Darren Shepherd 915894a74a Update rancher-operator and fleet 2020-09-17 00:01:27 -07:00
rajashree 00d42a178c Expand default resourceset to include 2.5 CRDs 2020-09-16 12:14:19 -07:00
Jacob Payne 74ea61d262
rke1 to rke (#638) 2020-09-16 11:36:08 -07:00
Darren Shepherd 4fc422c4b3 Update rancher-operator 2020-09-15 23:05:11 -07:00
Darren Shepherd a0de135517 Update rancher-operator crd 2020-09-15 23:01:37 -07:00
Darren Shepherd 0239984da2 New rancher-operator and fleet 2020-09-15 22:44:15 -07:00
Darren Shepherd 16dfb1154b rancher-operator v0.1.0-alpha4 2020-09-14 22:00:59 -07:00
Arvind Iyengar d03ffe81df Create Alertmanager secret in pre-install hook 2020-09-14 16:22:16 -07:00
Prachi Damle 433d3a5ffa
Merge pull request #644 from prachidamle/new_cis_fixes 
New cis-operator state transition fixes
 2020-09-14 09:50:11 -07:00
Jacob Payne 2d2f818ad5
bumped image versions (#639) 2020-09-14 08:52:53 -07:00
Prachi Damle e0a5f24a68 Updating cis-operator image tag, correcting readme, updating CRD defn 2020-09-14 00:29:45 -07:00
Darren Shepherd 2d2bcdde50 Update fleet and rancher-operator 2020-09-12 16:14:45 -07:00
Jacob Payne 1908520a34
upgraded upstream chart version (#608) 
* upgraded upstream chart version
 2020-09-11 14:25:14 -07:00
Arvind Iyengar 4d5653b2ec Update docs, descriptions, and other minor fixes 
- [rancher-pushprox] add hidden annotation + update description
- [rancher-monitoring] update description + add monitoring app-README.md
- [rancher-monitoring|rancher-pushprox] Move systemDefaultRegistry to global.cattle
- [rancher-monitoring] Move exporter enabled logic to _helpers.tpl
 2020-09-10 17:23:47 -07:00
Darren Shepherd ec627b5fd2 rancher-webhook v0.1.0-alpha7 2020-09-10 17:22:43 -07:00
Darren Shepherd a1684f1d11 rancher-webhook v0.1.0-alpha6 2020-09-10 17:10:50 -07:00
Darren Shepherd caa9a4fc38 rancher-webhook v0.1.0-alpha4 2020-09-10 16:33:48 -07:00
Darren Shepherd ceda36dce4 Update fleet, rancher-operator, rancher-webhook 2020-09-10 15:18:31 -07:00
Rajashree Mandaogane ef9d7aeafb
Merge pull request #630 from mrajashree/quote 
Remove quotes around pvc storageClassName
 2020-09-10 15:06:24 -07:00
rajashree 4fbdb77861 Removes quotes around pvc storageClassName 
The field storageClassName uses "quote" template function. So the quotes around it
lead to errors. This commit removes the quotes
 2020-09-10 14:43:53 -07:00
Steven Crespo 81c286cb9f
Merge pull request #616 from PennyScissors/update-gatekeeper-v3.1.0 
Update opa gatekeeper to v3.1.0
 2020-09-10 14:17:31 -07:00
Steven Crespo fb8c308737 Update opa gatekeeper to v3.1.0 2020-09-10 13:12:51 -07:00
Brenda Rearden 1322150a57
Merge pull request #627 from brendarearden/istio-version-rollback 
Add annotation changes to version Istio 1.6.8
 2020-09-10 09:22:14 -07:00
Brenda Rearden 46204a9171 Add cattle system registry 2020-09-09 17:04:25 -07:00
Brenda Rearden 583b669a92 Add annotation changes to version Istio 1.6.8 2020-09-09 16:17:44 -07:00
aiyengar2 7d32212d2c
Merge pull request #595 from aiyengar2/change_crd_ownership 
Add generateCRDChart.assumeOwnershipOfCRDs flag
 2020-09-09 16:08:08 -07:00
prachidamle 2e8885abaa Generated changes 2020-09-09 22:50:15 +00:00
Prachi Damle b55e6ec019 Adding rancher-cis-benchmark-crds - CRD chart for CIS v2 
Adding rancher-cis-benchmark - Main chart for deploying cis-operator

Review comments and changes CRDs and adding the roles

Adding default ClusterScanProfiles in a Configmap

Updating kubernetes version to have major.minor.patch

Package the CRDs within the original chart and add package.yaml

chart changes for tolerations, crds, added
global.cattle.systemDefaultRegistry

Review changes to removed nodeSelector helper, combine all cis clusterroles in one file

CRD name change and adding keywords, moving package.yaml one folder upi
Renamed hardened benchmark
Move providesGVR to chart.yaml
 2020-09-09 15:45:25 -07:00
Arvind Iyengar 9fe6ed19c1 Use assumeOwnershipOfCRDs for rancher-monitoring 2020-09-09 15:25:13 -07:00
rajashree 4ad856c2cc Backup-restore-operator chart 2020-09-09 12:56:50 -07:00
Brenda Rearden da849a2dee Add providesGVR to patch file and remove from package.yaml 2020-09-09 12:52:34 -07:00
Caleb Bron f223cb6b6d Make monitoring gvr singular 2020-09-08 22:13:09 -07:00
Brenda Rearden aa13a90e13 Update provides/requires gvr, added keywords 2020-09-08 21:12:11 -07:00
Brenda Rearden e6d0c9c8bf Add hidden annotation to kiali-server chart 2020-09-08 15:43:08 -07:00
Brenda Rearden 9808ea00df Update to rancher image, remove extra end in helper 2020-09-08 15:43:08 -07:00
Arvind Iyengar 30aa33a5b1 Use Rancher mirror for jettech/kube-webhook-certgen 2020-09-08 13:41:17 -07:00
Jacob Payne 0e21736bed
use cattle system registry (#613) 2020-09-08 13:01:27 -07:00
Caleb Bron 92211af12a update how we manage dependency annotations 2020-09-04 20:46:44 -07:00
Arvind Iyengar 1b0deff7a9 Use Rancher images for monitoring subcharts 2020-09-04 12:07:58 -07:00
Arvind Iyengar bd24317ee8 Add private registry to monitoring subcharts 2020-09-04 12:07:58 -07:00
Arvind Iyengar 43efb64f82 Use fixed versions for subcharts of rancher-monitoring 2020-09-04 12:07:58 -07:00
Arvind Iyengar 3b6f47638d fix typos in alerting config 2020-09-03 15:15:36 -07:00
Caleb Bron 3bbde5f819 Remove nginx-ingress 
It was part of rke2 and all of those charts have moved elsewhere
 2020-09-03 10:50:24 -07:00
Jacob Payne ffa781597a
removed k3s syslog parser (#593) 2020-09-03 10:47:57 -07:00
Steven Crespo 4f583e6f46
Merge pull request #588 from PennyScissors/update-rancher-gatekeeper-readme 
Update default value of `auditInterval` in README
 2020-09-01 12:29:28 -07:00
Darren Shepherd 6cddc8911f Update to fleet v0.3.0-alpha6 2020-08-31 23:53:18 -07:00
Jacob Payne 96282022fa
added support for gathering rke1 container logs (#573) 2020-08-31 16:20:32 -07:00
Jacob Payne 4128861cb3
changed default operator image (#590) 2020-08-31 15:58:31 -07:00
aiyengar2 5825928eac
Merge pull request #599 from aiyengar2/update_default_alerting_template 
Update default Alerting template for defaults set in UI
 2020-08-31 14:47:14 -07:00
Jacob Payne e8486d3953
removed logging output and flow configs (#587) 2020-08-31 14:22:23 -07:00
Darren Shepherd d3a7562fda Fleet v0.3.0-alpha5 2020-08-30 21:45:42 -07:00
Arvind Iyengar 6bc9f8c45f Update default Alerting template 2020-08-28 20:14:58 -07:00
Arvind Iyengar 267b8afc95 Rearrange patch 
This commit is required due to patch flip-flops that will occur till https://github.com/rancher/rancher/issues/28627 is resolved.
 2020-08-28 16:31:41 -07:00
Jacob Payne 695110ff2b
Feature/logging/eks (#583) 
* added eks support
 2020-08-28 11:45:13 -07:00
Caleb Bron a8748de0f4
Merge pull request #544 from MonzElmasry/rke2-monitoring 
rke2-monitoring
 2020-08-26 19:21:32 -07:00
Arvind Iyengar 23fbc636ab switch copyCerts image to rancher/busybox 2020-08-26 16:34:57 -07:00
Brenda Rearden 95800e5bd0
Merge pull request #577 from brendarearden/kiali-fixes 
Update kiali image conventions, remove release.name from naming convention
 2020-08-26 16:12:36 -07:00
Brenda Rearden 5da19fc4a4 Remove release name, refactor image values, update web_root 2020-08-26 15:59:31 -07:00
Menna 7c63442e79 add rke2proxy toleration 2020-08-27 00:49:54 +02:00
Menna e5dfdc5c88 Adds support for monitoring the following k8s components in rke2 clusters: 
- `rke2-scheduler`
- `rke2-controller-manager`
- `rke2-proxy`
- `rke2-etcd`

All exporters are created from the cattle-pushprox chart. This commit
also modifies the relevant Grafana Dashboard ConfigMaps and
PrometheusRules to deploy if the PushProx exporters are enabled.

See changes to `overlay/CHANGELOG.md` for details on what has been added/modified.
 2020-08-26 22:16:37 +02:00
Arvind Iyengar e0d3e6519b Use Rancher images for rancher-monitoring 2020-08-25 19:37:34 -07:00
Arvind Iyengar aa30c498ea Add private registry support to rancher-monitoring 2020-08-25 19:37:34 -07:00
Arvind Iyengar d5a2f275f7 Add private registry support to rancher-pushprox 2020-08-25 19:37:34 -07:00
Steven Crespo 7f77955729 Update default value of `auditInterval` in README 2020-08-25 15:50:37 -07:00
Brenda Rearden cbe0c6021b Correcting version in chart.yaml 2020-08-25 14:39:23 -07:00
Brenda Rearden 49f0aaad9e Change image tags to 1.7.0, update pod image version, remove addons 2020-08-25 13:56:35 -07:00
Brenda Rearden 8445fe7bd6
Merge pull request #574 from brendarearden/istio-168 
Istio: Add default pod disruption budget
 2020-08-25 13:49:10 -07:00
aiyengar2 58374d5078
Merge pull request #534 from aiyengar2/alerting_v2 
Add Alerting V2
 2020-08-25 13:21:26 -07:00
Arvind Iyengar d085bc088f Add alerting support to rancher-monitoring 2020-08-25 12:06:39 -07:00
Brenda Rearden 5a211497c2 Add default podDisruptionBudget 2020-08-25 10:03:10 -07:00
Brenda Rearden 0786578203 Change image version to remove canary support 2020-08-25 10:00:50 -07:00
Brenda Rearden a267e30656 Change to rancher images 2020-08-25 09:59:54 -07:00
Brenda Rearden a486f692f7 Add default podDisruptionBudget 2020-08-24 17:06:25 -07:00
Jacob Payne f022fe5757 fixed missing rke2 config 2020-08-24 16:15:57 -07:00
Jacob Payne 729e3c53d4
fixed crd breakout (#578) 
* fixed crd breakout
 2020-08-24 15:17:10 -07:00
Jacob Payne fb19db55fb
Feature/logging/rke2 (#568) 
added rke2 logging support
 2020-08-24 14:04:27 -07:00
Brenda Rearden 4e719e4404 Change image version to remove canary support 2020-08-24 13:22:21 -07:00
Brenda Rearden af2f94b759
Merge pull request #569 from brendarearden/istio-167 
Remove canary and set version to 1.6.7 for upgrade testing
 2020-08-24 12:48:54 -07:00
Darren Shepherd 323e56fe20 Add Fleet 2020-08-21 18:52:51 -07:00
Jacob Payne 7e14b4ee14
fixed template issues with k3s (#567) 2020-08-21 09:28:01 -07:00
Brenda Rearden 6e4c1e8d25 Remove canary and set version to 1.6.7 for upgrade testing 2020-08-20 16:47:18 -07:00
Brenda Rearden bddd43f53f Change to rancher imags, delete old builds 2020-08-20 15:13:57 -07:00
Caleb Bron 0a381894df remove rke2 charts 2020-08-19 13:28:53 -07:00
Jacob Payne a63500248a
added k3s support (#560) 2020-08-19 12:43:00 -07:00
Steven Crespo 813457423b
Merge pull request #553 from PennyScissors/update-gatekeeper 
Update gatekeeper to v3.1.0-rc.1
 2020-08-18 15:20:34 -07:00
Daishan 4e991faf6a Update rio to v0.8.0-rc2, add experimental label 2020-08-18 13:35:00 -07:00
Arvind Iyengar d2bf307e59 Change default to all CRs in all namespaces 
This commit sets the following field to false:
`<serviceMonitor|podMonitor|rule>SelectorNilUsesHelmValues: true`

As a result, we look for all CRs with any labels in all namespaces rather than just
the ones tagged with `release: rancher-monitoring`.
 2020-08-18 10:35:27 -07:00
Arvind Iyengar f3aebdca14 Update grafana default deploymentStrategy 
If the Grafana deployment strategy is not Recreate, the deployment will
be stuck during an upgrade when PV is attached.
 2020-08-18 10:35:27 -07:00
Arvind Iyengar 215cf10a68 Add NoExecute + NoSchedule toleration to PushProx 
This commit adds NoExecute / NoSchedule tolerations by default to all of the
PushProx exporters since the default expectation when deploying these exporters
is that they are deployed on the expected nodes based on nodeSelector labels
regardless of any taints added to those nodes.

Users can always choose to override these settings if necessary.
 2020-08-18 10:35:27 -07:00
Arvind Iyengar de6fbbb129 Increase prometheus resource limits and requests 2020-08-18 10:35:23 -07:00
Arvind Iyengar 3d6b8c94c7 Move ClusterRoles and change values.yaml fields 
- Moves `monitoringRole` settings into `global.rbac` in values.yaml
- Moves user ClusterRoles into one file: `rancher-monitoring/clusterroles.yaml`
- Reformats user ClusterRoles format to look like upstream format
- Enables aggregateRolesForRBAC by default
- Updates README.md and CHANGELOG.md for relevant ClusterRole changes
 2020-08-18 10:02:30 -07:00
Arvind Iyengar 93f477b3e9 Use Rancher PushProx image 2020-08-18 10:02:30 -07:00
Arvind Iyengar 701098fd72 Update default namespace to cattle-monitoring-system 2020-08-18 10:02:28 -07:00
Arvind Iyengar 63647c6849 Update README to add rancher-monitoring changes 
Adds prometheus-adapter and rancher-pushprox to the README.md and also
adds fields for Rancher Monitoring config
 2020-08-18 09:58:43 -07:00
brendarearden ff8bcc0755 Change namespace back to istio-system 
Add force install flag
Increase istio version
 2020-08-17 17:30:08 -07:00
Jacob Payne b3e81b1db6
added image overrides (#554) 2020-08-17 16:53:55 -07:00
Steven Crespo 1aaa1948f6 Update gatekeeper to v3.1.0-rc.1 
- Updated package to reference latest release
- Removed previous chart's tgz to make changes in place
 2020-08-17 13:11:15 -07:00
Caleb Bron b76723768c add custom web_root to kiali 2020-08-17 11:57:03 -07:00
Jacob Payne 3ec3d344c7
added toggle for logging persistence (#540) 2020-08-14 13:17:33 -07:00
Jacob Payne 444367b353
Merge pull request #539 from paynejacob/logging-secrets 
use secrets for certs and passwords
 2020-08-14 10:20:47 -07:00
Caleb Bron cb3b2acebd Remove helm vendored dependencies from charts 2020-08-13 12:22:39 -07:00
cbron 7e532ef2fe Generated changes 2020-08-12 22:28:18 +00:00
Caleb Bron 9329c3c38d
Merge pull request #532 from cbron/kiali-server 
rancher-kiali-server
 2020-08-12 15:27:45 -07:00
Jacob Payne 4f4e7dce5d use secrets for certs and passwords 2020-08-12 14:03:25 -07:00
Jacob Payne 413a846647
Merge pull request #536 from paynejacob/fix/issue-28256 
fixed logging cluster roles
 2020-08-12 10:49:11 -07:00
Jacob Payne 924a9fd125
Merge pull request #535 from paynejacob/feature/rke 
added rke support
 2020-08-12 09:35:34 -07:00
Jacob Payne 8dc1928d82
Merge pull request #537 from paynejacob/feature/logging-crd-breakout 
added crd annotations for logging
 2020-08-11 13:20:26 -07:00
Jacob Payne 569e213fe8 added rke support 2020-08-11 10:38:33 -07:00
Jacob Payne ac8099a8e3 added crd annotations for logging 2020-08-11 10:28:46 -07:00
Steven Crespo fbbcefc976
Merge pull request #527 from PennyScissors/update-gatekeeper-chart-rebase 
Update gatekeeper chart
 2020-08-11 09:54:31 -07:00
Jacob Payne 6e70b85a5b fixed logging cluster roles 2020-08-10 16:02:38 -07:00
Caleb Bron ef8a72e077 rancher-kiali-server init 2020-08-10 14:38:49 -07:00
Darren Shepherd 6554efb687 Remove ECM feature chart 2020-08-07 22:29:21 -07:00
Steven Crespo c6370509d8 Add webhook service and update changelog 2020-08-07 17:37:26 -07:00
Steven Crespo 865476ee75 Move add-on files to overlay 
Move add-on files allowedrepos.yaml, job-constraints-crd.yaml and
requiredlabels.yaml to overlay
 2020-08-07 13:50:23 -07:00
Jacob Payne 33fa5f70ca
Merge pull request #522 from paynejacob/feature/logging-providers 
added kafka, splunk, syslog output support
 2020-08-07 12:50:44 -07:00
Steven Crespo df740fecc8 Enable generate CRD chart 2020-08-07 12:46:07 -07:00
Steven Crespo 19b1be917d Update for Helm 3 compatibility 
- Move crds to crds directory
- Remove crd-install hooks and templates from crds
 2020-08-07 12:45:59 -07:00
Steven Crespo d2578e40da Remove index and update istio-kubectl 
- Remove index as we package and host our charts
- Update rancher/istio-kubectl image tag to 1.5.8
 2020-08-07 12:43:46 -07:00
Steven Crespo 6e147640be Update namespace annotation 
- Update namespace annotation to `cattle-gatekeeper-system`
- Remove `gatekeeper-system` from templates as Rancher handles
namespaces for chart installation.
 2020-08-07 12:42:25 -07:00
Jacob Payne 75d396906a added kafka, splunk, syslog output support 2020-08-07 10:22:33 -07:00
Brenda Rearden df9f93262b
Merge pull request #529 from brendarearden/istio-versioning 
Update version to 1.6.7
 2020-08-06 13:17:23 -07:00
Steven Crespo 3d8b451d4a Update opa gatekeeper chart to v3.1.0-beta.11 
The previous patch didn't apply cleanly since the latest version had
significant changes made including structural. Instead I started with
an empty patch file and made changes manually. This patch includes the
same changes done in our previous patch, but on the latest version of
the chart.
 2020-08-06 12:37:13 -07:00
Arvind Iyengar 921f735cbc Remove CRD code from upstream 
Removes the code that supports the Helm 2 hack for crd/ (`prometheus-operator/cleanup-crds.yaml` and
`prometheus-operator/crds.yaml`) and removes crd-install hooks from crds.

Also updates the README.md and CHANGELOG.md accordingly.
 2020-08-05 10:33:38 -07:00
Brenda Rearden b0a79ea343 Update version to 1.6.7 2020-08-04 15:37:53 -07:00
aiyengar2 c72f44d1cc
Merge pull request #517 from aiyengar2/add_split_crd_flag 
Add generateCRDChart flag
 2020-08-04 10:55:58 -07:00
Arvind Iyengar fcc8528186 Enable splitting CRDs to separate package 
This commit adds script changes to automatically allow packages to split
the CRD components located in a crd/ directory into a separate package.

It also automatically adds in a validation yaml helper to the main package
to prevent a user from installing the base package without installing the crd
install package first.

Any package can enable the creation of a separate crd package by just adding
`splitCRDsIntoSeparatePackage: true` into the package.yaml, as shown in the
rancher-monitoring chart.
 2020-08-04 10:40:45 -07:00
Jacob Payne bca787abea fixed logging namespace and ui component name 2020-08-03 14:26:21 -07:00
Vincent Fiduccia d239bf188a
Update README.md 2020-07-31 15:18:43 -07:00
Caleb Bron a224a87038 moving dev-charts to charts and fixing logo path 2020-07-30 16:13:01 -07:00
Caleb Bron f7dd80a3c1 copy charts from dev-charts 2020-07-30 16:09:43 -07:00
Denise Schannon 44e16849c3 Initial commit 2020-07-29 15:59:02 -07:00